I am trying to install a new stand alone instance of FreeIPA on CentOS 7.
I am doing this in an Amazon AWS EC2 environment.
The install completes flawlessly every time, however, when I attempt to run for the first time:
I always get back:
kinit: Cannot contact any KDC for realm 'DOMAIN.COM' while getting initial credentials
Googling, I found a way to trace this command:
KRB5_TRACE=/dev/stdout kinit admin
In which case I get the following output:
[root@ipa1 ~]# KRB5_TRACE=/dev/stdout kinit admin  1426267179.15039: Getting initial credentials for admin@DOMAIN.COM  1426267179.17085: Sending request (164 bytes) to DOMAIN.COM  1426267179.17225: Resolving hostname ipa1.domain.com  1426267179.17715: Sending initial UDP request to dgram 10.209.10.19:88  1426267179.17786: UDP error receiving from dgram 10.209.10.19:88: 111/Connection refused  1426267179.18382: Initiating TCP connection to stream 10.209.10.19:88  1426267179.18431: Terminating TCP connection to stream 10.209.10.19:88 kinit: Cannot contact any KDC for realm 'DOMAIN.COM' while getting initial credentials
Continuing to Google for "UDP error receiving from dgram" & "Connection refused", I see that this is a common recent issue with the FreeIPA install, but have yet to find a posted solution.
Here are the packages that I have installed:
[root@ipa1 ~]# rpm -qa | grep ipa ipa-python-3.3.3-28.0.1.el7.centos.3.x86_64 python-iniparse-0.4-9.el7.noarch sssd-ipa-1.11.2-68.el7_0.6.x86_64 ipa-client-3.3.3-28.0.1.el7.centos.3.x86_64 ipa-server-3.3.3-28.0.1.el7.centos.3.x86_64 libipa_hbac-1.11.2-68.el7_0.6.x86_64 ipa-admintools-3.3.3-28.0.1.el7.centos.3.x86_64 libipa_hbac-python-1.11.2-68.el7_0.6.x86_64
Does anyone know how to get around this issue to complete the install on CentOS 7 in Amazon AWS EC2?
Thanks in advance.